Top AI tools such as OpenClaw and Github Copilot can be hijacked to create new massive botnets


  • AI hallucination could become a weapon, new report warns
  • HalluSquatting is short for “adversarial hallucination squatting”
  • GitHub Copilot, Gemini CLI and OpenClaw are all affected

Your favorite AI service could be subverted to deploy code that turns your phone or PC into a botnet, according to researchers at Intuit, the Technion and Tel Aviv University.

Dubbed HalluSquatting, a portmanteau of adversarial hallucinationsquatting, the technique is similar to typosquatting in that it relies on a mistake to distribute malicious code. While typosquatting can occur with the wrong entry of a website URL, HalluSquatting revolves around an LLM that is unable to identify a resource or repository with 100% accuracy.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top